This is intended; it is a security feature to prevent other people viewing your accounts if you have stepped away from your computer. If you don't like it, you can adjust the time up to an hour or disable it altogether by clicking on the "Settings" icon in the top right of Ledger Live and changing the "Auto-lock" settings under the "General" tab.
It logged me out while doing a transaction and I had to reenter the PIN, confirmed BTC wallet which was irritating. Thanks! Will do that.
You can't lose your coins simply because of a fake pop up. The fake pop up required users to follow a fake link, download fake software, install the fake software, and open their wallet with it. If you follow the recommended steps for properly installing Electrum (i.e. only ever download from "electrum.org" and verify all files before installation), then you can't be fooled by attacks like this. In addition, this has already been patched for many months, and is only continuing to affect users using outdated versions. In further addition, if you were using Electrum with a hardware wallet (as you would be), this wouldn't be effective as you would still have to confirm any transaction on your Ledger device just like you do at the moment using Ledger Live.
Electrum isn't risky. Users with poor security practices are risky.
Electrum is open-source and a free wallet which is why it can be manipulated more easily than Ledger that's hardware. Even the best of people can be fooled if they follow the pop-ups in the wallet and even Ledger has the same option of updating the version. Ever since I got hacked due to a virus on my PC, I avoid installing anything on it and hence I started using Ledger which doesn't get affected even if my PC is infected. I don't like to use even Ledger Live but still since it doesn't get affected by viruses, it's fine.
